CVE-2026-53787 | Amasty Order Attributes for Magento 2 up to 3.x Upload Endpoint unrestricted upload

A vulnerability was found in Amasty Order Attributes for Magento 2 up to 3.x. It has been classified as critical. The affected element is an unknown function of the component Upload Endpoint. This manipulation causes unrestricted upload.

This vulnerability is registered as CVE-2026-53787. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More